f0b85e607b192ae2526e4e2967e5d57d239db5c8747614bf5747a53677f317c3 | Triage

Sharing

General

Target

f16f8f968def49c0a8c942fd1d28f3fb_JaffaCakes118
Size

100KB
Sample

240415-tc6aaace6z
MD5

f16f8f968def49c0a8c942fd1d28f3fb
SHA1

28dc612f6cd189bab0d2defdc4dca5a20f099ff8
SHA256

f0b85e607b192ae2526e4e2967e5d57d239db5c8747614bf5747a53677f317c3
SHA512

99b691e74da2e99139f670ff2978c79024ec64c17a5ad11d3d961e91b56d762ba6d4190695918789875f93797e63d9fa1bf14bb506792e32677364fb4757e86b
SSDEEP

1536:SzxcMPOYfQxJVgux399nGBKMDwgWsrsm94x1Vg98uPGUt8bfgwlSU6bCz2gCzuYU:SrOAQxEux8tDisuyRPGUt8E4+ktY

Score

7^/10

Malware Config

Targets

- Target
  
  f16f8f968def49c0a8c942fd1d28f3fb_JaffaCakes118
- Size
  
  100KB
- MD5
  
  f16f8f968def49c0a8c942fd1d28f3fb
- SHA1
  
  28dc612f6cd189bab0d2defdc4dca5a20f099ff8
- SHA256
  
  f0b85e607b192ae2526e4e2967e5d57d239db5c8747614bf5747a53677f317c3
- SHA512
  
  99b691e74da2e99139f670ff2978c79024ec64c17a5ad11d3d961e91b56d762ba6d4190695918789875f93797e63d9fa1bf14bb506792e32677364fb4757e86b
- SSDEEP
  
  1536:SzxcMPOYfQxJVgux399nGBKMDwgWsrsm94x1Vg98uPGUt8bfgwlSU6bCz2gCzuYU:SrOAQxEux8tDisuyRPGUt8E4+ktY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2